PublicDate: 2006-11-30 15:28:00 UTC
Candidate: CVE-2006-6172
References:
 https://ubuntu.com/security/notices/USN-392-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6172
Description:
 Buffer overflow in the asmrp_eval function in the RealMedia RTSP stream
 handler (asmrp.c) for Real Media input plugin, as used in (1)
 xine/xine-lib, (2) MPlayer 1.0rc1 and earlier, and possibly others, allows
 remote attackers to cause a denial of service and possibly execute
 arbitrary code via a rulebook with a large number of rulematches.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/mplayer/+bug/163291
Priority: medium
Discovered-by:
Assigned-to: fujitsu
CVSS: 
upstream_xine-lib: released (1.1.3)
dapper_xine-lib: released (1.1.1+ubuntu2-7.7)
edgy_xine-lib: released (1.1.2+repacked1-0ubuntu3.4)
feisty_xine-lib: not-affected
gutsy_xine-lib: not-affected
devel_xine-lib: not-affected
upstream_mplayer: released (1.0rc1try2)
dapper_mplayer: released (2:0.99+1.0pre7try2+cvs20060117-0ubuntu8.1)
edgy_mplayer: released (2:0.99+1.0pre8-0ubuntu8.2)
feisty_mplayer: not-affected
gutsy_mplayer: not-affected
devel_mplayer: not-affected